By allowing companies to store data and applications in the cloud and access them from anywhere in the world, cloud computing has completely changed the way businesses work. This ease does, however, come with some security dangers because putting sensitive data in the cloud leaves it open to hacker attacks. Thus, it is crucial to […]
SIEM (Security Information and Event Management) solutions are critical for monitoring and detecting potential security threats within an organization’s network. However, the effectiveness of a SIEM solution depends on how well it is tuned. A poorly tuned SIEM solution can generate a large number of false positives, which can lead to alert fatigue and make […]
SOAR (Security Orchestration, Automation, and Response) is a framework that combines security operations, automation, and response to detect, analyze, and respond to security incidents. SOAR helps organizations streamline their security operations by automating repetitive tasks, reducing response times, and improving the overall efficiency of their security operations. Implementing SOAR within an organization can be a […]
This article will focus mainly on important considerations when it comes to SIEM implementation. It also exposes some oversights during the run phase.
Only a few minutes before the end of 2017, a heavy year on cybersecurity from huge breaches through ransomware spreading and new vulnerabilities disclosers, to new defense technologies loudly evolving all around. I feel however almost tactless when I look the other way around and try to depict all of this in the real-world projects […]